by HandyCat
Written in Microsoft Visual C++
Released in November 2005
Made in Russia
dropped files: c:\rat.log c:\WINDOWS\system32\reghnd32.dll Size: 2,048 bytes c:\WINDOWS\system32\socketme.exe Size: 13,312 bytes startup: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon "Shell" old data: Explorer.exe new data: Explorer.exe socketme.exe tested on Windows XP August 09, 2006MegaSecurity